Information Systems Security Officer (ISSO)

We are looking for an experienced Information System Security Officer (ISSO) to join our team. As an ISSO, you will be responsible for managing the security of the information systems and networks. This highly visible position will be working with our government customers to ensure their networks are secure from unauthorized access, information loss, or damage while maintaining operational mission requirements (i.e., confidentiality, integrity, and availability).

• Perform maintenance and enforcement of base security policies and standards
• Monitor systems and implement security in accordance with the Risk Management Framework and its associated documents (i.e. - NIST 800-37, 800-53, and 800-53A)
• Ensures all system/network documentation is current, accurate, and accessible in the Enterprise Mission Assurance Support Service (eMASS)
• Define user workflow to manage hardware and software change management
• Ensure system users have appropriate clearances, authorization, and an understanding of their responsibilities
• Participate in Change Control Boards on the respective system/network and coordinate changes or modifications to hardware, software, or firmware with the system administrator and ISSM prior to action
• Recommend and prepares waivers of acceptable cybersecurity deviations from compliance regulations based on specific needs of the system and/or network operations
• Reviewing and resolving alerts/events across applications and system requirements
• Ensure network/system scans are completed, uploaded, and reported on a regular basis
• Define plans of action and milestones for supported systems and leadership review/approval

• At least 5 years of applicable experience as a cybersecurity professional with previous work implementing DoDI 8510.01, AFI 17-101, and AFI 17-130 requirements
• Meet DoDI 8500.01 and 8140.03-M IAT Level II Cybersecurity baseline certification requirements (e.g., CCNA-Security, GICSP, GSEC, Security+ CE, CND, SSCP) or above
• Must be a US Citizen with a minimum Secret security clearance
• Proven experience achieving and maintaining a system or network Authority to Operate throughout the entire workflow process and implementing corrective actions identified in the plan of action and milestones
• Possess a good understanding modern security technology to include, but not limited to, firewalls, security information and event management systems, intrusion detection, and antivirus software
• Solid comprehension, understanding, and previous implementation of the vulnerability management remediation process
• Strong oral and written communication skills; must be able to articulate cybersecurity policies and procedures in a clear manner to both technical and non-technical audiences
• Understanding and familiarity with NIST, FIPS, CNSSI, DOD, and Air Force cybersecurity guidance and publications

• Bachelor's Degree in Management Information Systems, Cybersecurity, or Computer Information Systems
• Experience with system administration, patching and remediation processes to include working knowledge of the ACAS system
• Meet DoDI 8500.01 and 8140.03-M IAM Level II Cybersecurity baseline certification requirements (e.g., CAP, CASP+ CE, CISM, CISSP, GSLC, CCISO) or above

$110,000-140,000